| PCI Quality Lead (QSA Certified) : Salem, OR (Hybrid) : 6+ Months Contract at Salem, Oregon, USA |
| Email: [email protected] |
| From: Jitendra Upreity, Technocraft Solutions [email protected] Reply to: [email protected] Job Title: PCI Quality Lead (QSA Certified) Location: Salem, OR (Hybrid) Duration: 6+ Months Contract Note: **** Will need to be onsite starting day 1 for hybrid work schedule. NO REMOTE ONLY OPTION. Responsibilities and Skills: Job ID: OR-B36991W101 Location: Salem, Oregon (ODOT) Duration: 6+ Months Skills: Skills Database Data Analysis Expert (10+ Years) Yes Skills Operating Systems Windows 9x/2000/XP/NT/Vista/7 Advanced (7-9 Years) Yes Skills Others Content Management Advanced (7-9 Years) Yes Skills Others Requirements Management Expert (10+ Years) No Skills Others System Testing Processes & Facilitation Advanced (7-9 Years) No Skills Others Business process modeling Proficient (4-6 Years) No Skills Others MS Visio Advanced (7-9 Years) Yes Skills Others PCI DSS v4.0 Expert (10+ Years) Yes Skills Others PCI QSA Expert (10+ Years) Yes Skills Others Power B.I. Proficient (4-6 Years) No Skills Others Communication skills both verbal and written Expert (10+ Years) Yes Skills Others Learning ability Expert (10+ Years) Yes Skills Others Project management Expert (10+ Years) Yes Skills Others Proposal writing Expert (10+ Years) Yes Skills Tools Microsoft Office Expert (10+ Years) Yes Certified PCI Qualified Security Assessor ( QSA ) PCI Data Security Standard Version 4.0 expertise Microsoft VISIO advanced Skills Microsoft Office Expertise Project Management Process Expertise. Ability to communicate clearly, in writing and verbally. Demonstrated capability to interact with customers, clearly understand customer needs and document those needs. Has experience with requirements management and analysis. Project Context The State of Oregon Department of Transportation (ODOT, the Agency) and Oregon State Treasury (OST) have Compliance Requirements as identified in ORS 293.875 The Oregon State Treasury (OST) directs that agencies that process, store, and/or transmit cardholder information associated with credit/debit card transactions are contractually required to comply with Payment Card Industry Data Security Standards (PCI DSS). Each of ODOTs Business Unit has unique business needs, customers, requirements, and processes. Their infrastructure is hosted by the Agencys Central Services Enterprise Technology group (ET) who is responsible for those information systems (IS), and Financial Services who is responsible for financial transaction integrity. Compliance for each Business Unit transaction system is subject to this authority as published by the PCI Security Standards Council. ET and Financial Services assist the Business Units under the direction of the ODOT Payment Security Review Board. The Payment Security Review comprised of ODOT Business Units processing PCI transactions desires to engage an experienced Contractor to review new Payment Card Industry Security Standard version 4.0 Security Compliance Requirements to identify initiatives and/or projects required to attain Agency PCI compliance and create a project portfolio with related plans to achieve the compliance goals. Individuals in this position have demonstrated experience in leading small to moderate sized testing teams. They understand the concepts of software quality assurance theory and practice. Can formulate testing strategy and plans where none may exist previously. They are able to communicate effectively with business and technical teams on testing activities and can assist developers with test-driven development. May require a bachelors degree and at least 9 years or equivalent experience in a related area. MUST BE CERTIFIED PCI QUALIFIED SERCURITY ASSESSOR (QSA) PCI DATA SECURITY STANDARD VERSION 4.0 EXPERTISE SHORT TERM PART TIME HOURS SCHEDULE WILL BE NEGOTIATED WHEN SELECTED SEE ATTACHMENT FOR PROJECT DETAILS The purpose of this request is to procure Data Security Standards Qualified Security Assessor consulting services for ODOT Information Services Branch (Architecture and Security / Payment Solutions Review Board.) The primary goal of the Contractor will be to collaborate with the ODOT team to perform an initial PCI DSS 3.2.1 to 4.0 compliance review and GAP analysis. The Contractor will review documents, systems, and processes as required to develop ODOTs PCI DSS 4.0 compliance roadmap. The tasks the contractor shall perform are as follows: Perform a Security Assessment GAP analysis and review documentation of ODOT credit card payment systems for security gaps. Review current ODOT systems and devices and advise ODOT of additional areas which merit review. Evaluate ODOT PCI compliance enterprise-wide (as determined by Task 1 and Task 2 review) with respect to PCI DSS version 4.0 compliance requirements and Agency current-state of PCI security compliance. Keywords: microsoft Idaho |
| [email protected] View all |
| Thu Aug 10 23:22:00 UTC 2023 |